CVE-2016-9121
Last modified
CVE-2016-9121 is a vulnerability of currently unknown severity. go-jose before 1.0.4 suffers from an invalid curve attack for the ECDH-ES algorithm. When deriving a shared key using ECDH-ES for an encrypted message, go-jose neglected to check that the received public key on a message is on the same curve as the static private key of the receiver, thus making it vulnerable to an invalid curve attack.. EPSS estimates a 1.41% chance of exploitation in the next 30 days.
Description
go-jose before 1.0.4 suffers from an invalid curve attack for the ECDH-ES algorithm. When deriving a shared key using ECDH-ES for an encrypted message, go-jose neglected to check that the received public key on a message is on the same curve as the static private key of the receiver, thus making it vulnerable to an invalid curve attack.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Go-Jose Project | Go-Jose | <= 1.0.3 |
References
- http://www.openwall.com/lists/oss-security/2016/11/03/1Mailing List, Patch, Third Party Advisory
- https://github.com/square/go-jose/commit/c7581939a3656bb65e89d64da0a52364a33d2507Issue Tracking, Patch, Third Party Advisory
- https://hackerone.com/reports/164590Permissions Required
- http://www.openwall.com/lists/oss-security/2016/11/03/1Mailing List, Patch, Third Party Advisory
- https://github.com/square/go-jose/commit/c7581939a3656bb65e89d64da0a52364a33d2507Issue Tracking, Patch, Third Party Advisory
- https://hackerone.com/reports/164590Permissions Required
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2016-9121?
How severe is CVE-2016-9121?
How do I fix CVE-2016-9121?
Are you affected by CVE-2016-9121?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST